Lucene search

[email protected]CVE-2008-2075

HistoryMay 05, 2008 - 4:20 p.m.

CVE-2008-2075

2008-05-0516:20:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2008-2075

cross-site scripting

xss

astrocam 2.5.0

security vulnerability

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.5%

JSON

Cross-site scripting (XSS) vulnerability in pic.php in AstroCam 2.5.0 through 2.7.3 allows remote attackers to inject arbitrary web script or HTML via the picfile parameter.

Affected configurations

NVD

Node

astrocamastrocamMatch2.5.0

astrocamastrocamMatch2.5.1

astrocamastrocamMatch2.5.2

astrocamastrocamMatch2.5.3

astrocamastrocamMatch2.5.4

astrocamastrocamMatch2.5.5

astrocamastrocamMatch2.5.5p1

astrocamastrocamMatch2.5.6

astrocamastrocamMatch2.5.6p1

astrocamastrocamMatch2.5.7

astrocamastrocamMatch2.5.8

astrocamastrocamMatch2.5.8p1

astrocamastrocamMatch2.5.8p2

astrocamastrocamMatch2.5.9

astrocamastrocamMatch2.6.0

astrocamastrocamMatch2.6.1

astrocamastrocamMatch2.6.2

astrocamastrocamMatch2.6.3

astrocamastrocamMatch2.6.4

astrocamastrocamMatch2.6.5

astrocamastrocamMatch2.6.6

astrocamastrocamMatch2.7.0

astrocamastrocamMatch2.7.1

astrocamastrocamMatch2.7.2

astrocamastrocamMatch2.7.3

CPENameOperatorVersion
astrocam:astrocamastrocameq2.5.0
astrocam:astrocamastrocameq2.5.1
astrocam:astrocamastrocameq2.5.2
astrocam:astrocamastrocameq2.5.3
astrocam:astrocamastrocameq2.5.4
astrocam:astrocamastrocameq2.5.5
astrocam:astrocamastrocameq2.5.6
astrocam:astrocamastrocameq2.5.7
astrocam:astrocamastrocameq2.5.8
astrocam:astrocamastrocameq2.5.9

CPE	Name	Operator	Version
astrocam:astrocam	astrocam	eq	2.5.0
astrocam:astrocam	astrocam	eq	2.5.1
astrocam:astrocam	astrocam	eq	2.5.2
astrocam:astrocam	astrocam	eq	2.5.3
astrocam:astrocam	astrocam	eq	2.5.4
astrocam:astrocam	astrocam	eq	2.5.5
astrocam:astrocam	astrocam	eq	2.5.6
astrocam:astrocam	astrocam	eq	2.5.7
astrocam:astrocam	astrocam	eq	2.5.8
astrocam:astrocam	astrocam	eq	2.5.9

Rows per page:

1-10 of 211

References

astrocam.svn.sourceforge.net/viewvc/astrocam/BUGS?view=markup

astrocam.svn.sourceforge.net/viewvc/astrocam/CHANGELOG?view=markup

astrocam.svn.sourceforge.net/viewvc/astrocam/v2.x/pic.php?r1=125&r2=126

secunia.com/advisories/30039

securityreason.com/securityalert/3852

www.securityfocus.com/archive/1/491513/100/0/threaded

www.securityfocus.com/bid/28998

www.wendzel.de/?sub=showpost&blogid=5&postid=56

exchange.xforce.ibmcloud.com/vulnerabilities/42122

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

72.5%

JSON

Related for CVE-2008-2075

nvd1 cvelist1 prion1